Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
File: Otu0daQwTIRTQ_2U_ummuIAI44s.mft (raw, json)
Hash identifier: Tg0HtYsq2BsgwF3R/OReLwwMVhIAMlmxKYA5+FZCELA=
Subject key identifier: 4B:23:33:E1:C3:60:89:EE:1D:49:6F:64:48:41:8A:71:73:25:77:28
Authority key identifier: 3A:DB:B4:75:A4:30:4C:84:53:43:FD:94:FE:E9:A6:B8:80:08:E3:8B
Certificate issuer: /CN=3adbb475a4304c845343fd94fee9a6b88008e38b
Certificate serial: 019D37C08599A4FBB1A5A8EAD3F0D110885E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
Manifest number: 0256
Signing time: Sun 29 Mar 2026 04:00:57 +0000
Manifest this update: Sun 29 Mar 2026 04:00:57 +0000
Manifest next update: Mon 30 Mar 2026 04:00:57 +0000
Files and hashes: 1: Otu0daQwTIRTQ_2U_ummuIAI44s.crl (hash: 3EbJAxuggPTi9AzDH+gneUrTil9C7jlc09lxUudU9nY=)
2: WEfg623at549gjZw64RcO_APHMQ.roa (hash: FO7uHOTKAm/yntYjpVC9E+eNIvpI6nRmgjdhZ1LH7Ak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:85:99:a4:fb:b1:a5:a8:ea:d3:f0:d1:10:88:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adbb475a4304c845343fd94fee9a6b88008e38b
Validity
Not Before: Mar 29 04:00:57 2026 GMT
Not After : Mar 30 04:00:57 2026 GMT
Subject: CN=4b2333e1c36089ee1d496f6448418a7173257728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:eb:27:d4:9d:90:da:72:22:6a:e8:78:da:c5:
7d:f2:25:48:01:52:ee:a5:82:df:64:74:31:d9:9b:
79:95:67:71:df:75:96:ac:80:31:31:f8:59:fa:7d:
f5:02:24:bc:f2:62:9d:cb:32:92:ad:67:3e:4e:00:
b9:69:0f:a7:f3:c5:9e:ce:b0:ac:96:a1:26:ea:2a:
bb:50:73:38:28:39:37:8f:bb:63:cf:a3:3a:b2:97:
8e:dd:a4:0f:12:cd:d8:e2:c2:15:47:ff:b7:82:8e:
b1:8e:1b:24:33:3a:22:3a:6a:2c:7a:d4:09:05:01:
fa:91:02:9a:e8:f8:5b:27:e5:f2:fa:a1:49:4d:96:
df:9d:4b:a6:82:35:97:89:48:7c:08:1e:52:74:62:
1b:9a:ef:2b:21:6a:ce:1c:0d:7e:6f:31:c0:7e:f4:
02:1e:68:67:6a:1e:b4:86:30:5c:58:94:e9:f0:d0:
8d:96:80:6f:11:0b:40:84:e8:ea:b1:ed:c7:ef:6f:
45:14:3b:99:d8:49:52:3e:54:48:51:e8:1f:1c:c8:
f6:6b:52:2f:46:5c:3e:00:31:83:76:3f:c8:67:6b:
83:a0:19:c6:e2:91:d1:5f:0d:a7:a3:c5:11:27:58:
e7:07:9b:66:d1:91:ac:00:2d:76:62:2f:03:f0:31:
22:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:23:33:E1:C3:60:89:EE:1D:49:6F:64:48:41:8A:71:73:25:77:28
X509v3 Authority Key Identifier:
keyid:3A:DB:B4:75:A4:30:4C:84:53:43:FD:94:FE:E9:A6:B8:80:08:E3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f0:a2:ee:d4:d7:56:9b:54:cc:21:c3:4e:a5:5f:58:24:7d:fd:
b6:27:a8:e9:8c:2b:9d:65:5a:71:0d:b4:7b:02:96:88:41:f9:
02:ed:67:0b:c0:70:7c:88:46:51:e6:eb:fc:b0:cd:5a:d1:4a:
6d:ae:8e:7a:ce:31:1d:35:c9:b8:8e:70:a4:8d:2a:f5:68:6d:
3a:aa:9c:ab:7c:d4:5a:f0:d3:f7:a5:f3:54:8a:f2:b8:06:4d:
ad:cb:9f:56:8e:ce:72:48:4f:c5:c2:c9:6e:a8:d2:4d:35:c1:
f8:c1:81:e1:80:06:34:78:f8:c4:18:5b:a3:ea:e9:c3:bc:91:
7f:4a:76:c9:78:38:f1:91:b4:ea:d9:9e:76:87:3c:d9:73:f3:
c5:57:75:13:8b:52:c7:9c:31:18:80:18:65:88:52:74:e5:17:
31:a3:94:0c:42:18:2f:bc:3f:d3:11:9a:fc:ec:7c:01:4f:72:
42:1c:67:e4:d2:11:f7:7b:b4:8b:04:27:76:d6:6d:ee:79:00:
aa:b5:f0:83:20:14:d2:4c:df:fb:ea:15:29:e4:a5:a6:e9:6c:
de:38:a0:af:30:95:0f:02:5f:3f:40:00:f5:21:5c:88:3e:75:
66:4a:df:68:37:8b:c8:c5:7a:e3:bc:b8:61:64:89:d3:48:2e:
c1:57:39:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:46 2026 by rpki-client